James Sankar (AARNet), Heather Boyles, Okabe
Videos: http://mirror.aarnet.edu.au/pub/aarnet/apan-middleware/ [mp4 format]
1) Middleware components in Higher education - CHAIR: James Sankar (AARNet)
Introduction & Scope
Identity Access Management
Biography: Keith Hazelton is IT Architect at the University of Wisconsin-Madison. He is a member of the Internet 2 Middleware Architecture Council for Education (MACE), chair of the MACE-Dir Working Group, and a member of the Net@Edu PKI Working Group sponsored by Internet 2 and Net@Edu. He is a frequent participant and sometimes presenter at Common Solutions Group (CSG) and Committee on Institutional Cooperation (CIC) meetings and workshops.
Time: 9:35 - 10:00
Abstract: The presentation will give an overview of the MAMS (Meta Access Management System) project, a $4.2m project funded by the Australian Department of Education, Science and Training in its "Backing Australia's Ability" program. It is developing solutions based on Shibboleth for HE federated, inter-institutional single sign-on using the Security Assertion Markup Language (SAML). Together with AARNet, we recently launched the first Australian testbed federation with ~400k users, and we are currently developing, together with other Australian universities, 10 service providers to add value to the federation. In addition, we have developed a Shibboleth Attribute Policy Editor that allows administrators and users to control the release of personal attributes to Service Providers in the Federation. I will also demonstrate the use of our Authenticated Federated Search engine, which queries protected repositories in real-time and gives an indication of the user's access rights. Furthermore, the presentation will discuss authorization using the eXtended Access Control Markup Language (XACML) for controlling access to Fedora, an open source repository. Finally, I will briefly discuss our work on Virtual Organizations and International Federations.
Biography: Dr. Erik Vullings received his MSc in Mechanical Engineering (specialization in mechatronics, August 1994) and his PhD in Electrical Engineering (specialization in biomedical signal validation, May 1999), both at Delft University of Technology in The Netherlands. In January 1999, he joined Philips R&D as a systems engineer, developing parts of complex business applications like assembly robots, medical equipment and wafer steppers. In October 2003, he became the programme manager of a 16m European Union funded FP6 project in assembly equipment. In February 2004, he moved to Sydney, Australia, where he is currently working for Macquarie University as the programme manager of a $4.2m DEST funded project called MAMS, the Meta Access Management System project, which is developing solutions for federated, inter-institutional single sign-on using SAML and authorization using XACML.
Time: 10:00 - 10:30
Abstract: We discuss an institutional unified authentication and authorization infrastructure using Central Authentication and Authorization Service (CAS2) to which we extend Central Authentication Service (CAS) developed by Yale University. Since CAS only treats authentication information, hence CAS provides a Single Sign On service in a more secure manner. CAS2 does not only provide authentication but also authorizations for accessing to Web applications.
Biography: Hisashi NAITO
received a Dr. Sci. in Mathematics (Differential
Geometry and Nonlinear Partial Differential Equations) at
2) Middleware in Research communities-CHAIR: Okabe (Kyoto University)
Time: 11:10 - 11:35
Abstract: This talk introduces recent two activities on building a production Grid in the Asia Pacific region, one is the PRAGMA routine-basis experiments and the other one is activities in the Asia Pacific Grid Policy Management Authority (APGrid PMA). PRAGMA established an experimental global Grid testbed and ran multiple applications simultaneously on a routine-basis. This experiment allowed us to learn issues involved in building an easy-to-use production global Grid. The APGrid PMA is responsible for the coordination of security policies in the Asia Pacific region. Collaborating with the other regional PMAs such as European Grid PMA and The America's Grid PMA, the APGrid PMA composes the International Grid Trust Federation (IGTF) which defines the policies and standards for Grid identity management. This talk also summarizes lessons learned and issues need to be solved towards building a production Grid in the Asia Pacific region.
Biography: Yoshio Tanaka received his B.E. in 1987, his M.E. in 1989 and his Ph.D.(Eng.) degree in 1995 all in mathematics from Keio University.
He was working at Real World Computing Partnership from 1996 to 1999.
He is currently a team leader of Grid Infraware Team at Grid Technology Research Center, National Institute of Advanced Industrial Science and Technology and the chair of the Asia Pacific Grid Policy Management Authority. His current research interests include Grid programming tools, developments and managements of Grid Testbed, and Grid security.
Time: 11:35 - 12:00
Abstract:Australian Higher Education Institutions, like other research institutions around the world, need to collaborate with each other and with their global research partners. However a range of issues can hinder this collaboration such as inter-institution identity management and access control to valuable resources such as access grids, computational grids, virtual observatories and digital repositories and the need to communicate securely so as to protect intellectual property.
Pivotal to the overcoming of these issues is the construction of a fabric of trust across participating institutions. This trust fabric has two major aspects; one which is rooted within mutually agreed common practices, policies, standards and liability and the other rooted within the technology over which this fabric is physically instantiated.
To this end the Council of Australian University Directors of Information Technology (CAUDIT), in concert with the Australian national Computer Emergency Response Team (AusCERT) and with funding from GrangeNet, the Department of Communication, Information Technology and the Arts (DCITA) and the Department of Education, Science and Training (DEST), have been working on the CAUDIT Public Key Infrastructure (PKI) Project to establish a National Certification Authority for the Australian Higher Education sector.
Public Key technology has the advantage of providing the principal elements of secure collaboration, such as identity, authentication, data integrity, confidentiality and non-repudiation as well as already having an existing foundation of policies, practices and standards upon which to construct a prototype trust fabric across the Australian Higher Education sector. The first phase of this project has included the further development of these policies, practices and standards and to implement a prototype PKI architecture so as to offer flexibility to institutions and virtual organizations and also allows maximal interoperation between organizations, both national and international.
This presentation will look at some vital issues on how to enable secure interoperation amongst the Higher Education sector while drawing on the experience gained when implementing the first phase of this project.
Rodney McDuff is currently the Manager of the Strategic Technologies Group with the Information Technology Services at The University of Queensland. Whilst at ITS Rodney has also been responsible for the planning, implementation and maintenance of core IT infrastructure services, applications and systems at UQ. He has also previously worked as a Research Fellow at the Advanced Computation Modelling Centre.
Viviani Paz - AusCERT, The University of Queensland
Viviani Paz is the Security Assurance Manager for AusCERT (The Australian Computer Emergency Response Team) based at The University of Queensland. Prior to joining AusCERT in 1997, Viviani worked in a range of IT areas including: system and network security; system programming and administration; and software testing in the Commercial and Academic sectors.Â The Australian Computer Emergency Response Team (AusCERT) provides a single, trusted point of contact in Australia for the Internet community to deal with computer security incidents and their prevention.
Time: 12:00 - 12:30
Speaker: Von Welch(NCSA)
Abstract: This talk will cover the basics of what constitutes a virtual organization and discuss lessons learned in the Grid community on establishing virtual organizations. It will also describe ongoing work in the the NMI GridShib project, which is allowing for interoperability between the Globus Toolkit, Shibboleth and MyProxy to establish virtual organizations based on identity federation.
Biography: Von Welch is the manager for Security R&D at the National Center for Supercomputing Application (NCSA), located at the University of Illinois. He leads a range of research and development activities in the areas of Grid security to identity federation to intrusion detection and traditional system security. His focus is on applied research in distributed systems security and he helps lead NCSA's cyber infrastructure development and deployment. He serves a member of the Globus Alliance board, a position that allows him to help architect the Globus Toolkit and the Grid Security Infrastructure, the de facto standard in Grid middleware. As a PI on the NMI GridShib project, he is working to apply identity federation techniques as developed by the Shibboleth project to the world of Grid security. He has published several standards in the GGF and IETF, and chaired several working groups. Prior to joining NCSA, Mr. Welch worked for the University of Chicago, where he worked full time on development and architecture of the Globus Toolkit. Previous positions included Kerberos deployment and administration, high-performance networking and network engineering.
3) Middleware activities - CHAIR: Heather Boyles
Time: 14:00 - 14:30
Speaker: Heather Boyles-Director, Member and Partner Relations Internet2 (USA)
Abstract: The presentation will focus on the Internet2 middleware initiative, which promotes standardization and interoperability and is working toward the
deployment of core middleware services at Internet2 universities. The
I2-MI has led to the development of secure, scalable web based single sign on federation products such as ShibbolethTM, SIGNET and GROUPER. Utilizing these tools, Internet2 has set up InCommon, a federation which allows member universities to support authenticated collaboration between their institutions and permits authenticated access to protected resources. This presentation will also talk about recent efforts to utilize Shibboleth to support grid users with the GridShib project, and focus on next steps for the Internet2 Middleware Initiative.
For more information see http://middleware.internet2.edu/
Biography: Heather Boyles is a Director in the Member and Partner Relations department of Internet2. She has senior management responsibilities for Internet2's relationships with infrastructure-related constituencies, including non-US networking initiatives, US federal research networks and US-based advanced regional networks. As part of these responsibilities, Heather serves as Director, International Relations.
She has been involved with numerous global networking initiatives and organizations, including the Coordinating Committee on Intercontinental Research Networking (CCIRN), the Internet Society (ISOC), the G7 Global Interoperability of Broadband Networks (GIBN) initiative and others.
Time: 14:30 - 15:10
Speaker: Klaas Wierenga (SURFNet)
Abstract: This presentation will be in two parts. The first part of the presentation is a summary of the Euro CAMP (Campus Architecture Middleware Planning) meeting that was held in Porto, Portugal in November 2005. The meeting was a follow on from the inaugural Euro CAMP spring meeting that was held in Turin. The CAMP is a forum for the exchange of knowledge and experience on practical and architectural items in the Middleware area. The focus points of the meeting were on Identity Management, federation definition, federated access to services and practical aspects on already exploited solutions like Shibboleth. More than 80 participants from all over Europe attended the 3-day workshop. The event was organised by TERENA and hosted by the University of Porto.
The second part of the presentation will present an overview of the Joint Research Activity 5 "Roaming and "Authorisation" development activity. This activity forms part of the European Commission co-funded Integrated Infrastructure Initiative project. JRA5 is currently in the first year of a four year project where the work items have been to document requirements and architecture specifications for "Roaming and Authentication and Authorisation Infrastructures". All documentation from the JRA5 group is published and available online at www.geant2.net in the Mediacentre section. Currently, the JRA5 have been focusing on the architectural concepts of both of the infrastructure developments and the practical installations. The vision is to combine both solutions into a single sign-on solution at a the later stage of the project plan.
Biography: Klaas Wierenga is the Manager of Middleware Services at SURFnet. He is co-chair of the TERENA taskforce on Mobility (TF-Mobility) and an active member of the Terena EMC2 (AAI) taskforce, and the Internet2 working group on network authentication (SALSA NetAuth). Klaas is also the Project Leader of the Roaming group within Geant2 "Roaming and Authorisation" activity (JRA5).
Time: 15:10 - 15:40
Speaker: Thomas Lenggenhager (SWITCH)
Abstract: SWITCH (Swiss NREN) has over six years experience of developing and operating a national Authentication and Authorization Infrastructure (AAI) for the research and education sector. The initial development activity focused on establishing an AAI. This was then followed by a three year pilot federation service. In summer 2005 the SWITCHaai production federation was launched.
This presentation looks back at the work done over the past six years and examines the use cases; how the AAI was built; how universities were involved and what organizational and legal frameworks were put in place to support inter-organisational trust fabrics. Thomas will then present the current status of the SWITCHaai production federation and look ahead at work that remains to be to done.
More information - visit www.switch.ch/aai
Biography: Thomas Lenggenhager graduated 1986 in Computer Science at ETH Zurich (Swiss Federal Institute of Technology). He joined SWITCH (Swiss Education Research Network) in 1988 where he worked in the areas messaging, network, directory and information services as well as security in various positions. Since 1999 he is involved with design, service specification and deployment of SWITCHaai as deputy project manager and for international relations. Currently he is contributing to the European GEAANT2-JRA5 research activity and TERENA TF-EMC2 task force.
Time: 15:40 - 16:00
Speaker: James Sankar (AARNet)
Abstract: Australia has begun work on a Middleware Action Plan and Strategy (MAPS) project that is lead by the University of Queensland in conjunction with a consortium of partners that include Monash University, Australian National University, Macquarie University, Council of Australian Directors of Information Technology (CAUDIT), Council of Australian University Librarians (CAUL), AARNet Pty Ltd and GrangeNet.
The MAPS project will identify the software and services (middleware) that are currently being used in Australia to link applications across a range of resources on networks and computer systems in Australian universities. It will identify existing areas of activity in the university and research sectors, and use these results to tap into the expertise across the sector to build a strategic plan of activities and projects for an Australian collaborative middleware strategy. This is an important project whose outcomes will enable other projects to leverage off common infrastructure and focus on providing new services that can be shared across the education and research sectors. This presentation will give details on what MAPS activities will take place over the next 18 months.
More information- see www.middleware.edu.au
Biography: James Sankar is AARNet's Application and Services Project Leader. He is based in Canberra, Australia and is responsible for coordinating development activities in content management, real time communications, middleware and security areas. He participates in the eduroam global working group and is a member of Internet2 SALSA and Fixed Wireless NetAuth working groups. James joined AARNet as a Middleware Network Engineer in April 2005 and was actively participated in the successful ARIIC bid to fund the MAPS project and continues to be closely involved. James was also involved in project managing ENUM Registrar trial services that led to successful accreditation in the Australian National ENUM trial and the production of an informative website and secure portal for enum registrations and enum updates in July 2005.
Prior to joining AARNet, James worked for UKERNA (2001-2005) as Authentication and Authorisation Development Manager where he was responsible for the creation of a Location Independent Trial (eduroam) that is currently migrated to a full service. James was the co-chair of the Terena Mobility taskforce (2001-2005). James is successfully managed a number of Network Access project at UKERNA including a JANET ADSL trial, a two-way satellite trial and a JANET Wireless Advisory Group.
4) APAN middleware developments-CHAIR: Okabe
Speaker: Professor Satoshi Matsuoka, Global Scientific Information and Computing Center, Deputy Director, NAREGI Project, Tokyo Institute of Technology / NII
Time: 16:40 - 16:50
||Organizing chairs: Kento Aida, TITECH [email@example.com], Putchong Uthayapas [KU, firstname.lastname@example.org], Seishi Ninomiya, NARO-NARC [email@example.com]|
|Objectives: Grid computing is an important emerging paradigm for organizing and sharing computing, network, storage and instrument resources in large scale applications. The Grid workshop brings together participants from academia, industry and government to learn and to discuss about grid activities in the APAN countries. The workshop is organized by two sessions, the tutorial session of Grid middleware and the technical session of updated grid research topics.|
Abstract:GridMPI is a new open-source implementation of MPI-1.2
and MPI-2.0 designed for the Grid. Using GridMPI, no
modifications are required to applications written
with MPI to run on parallel machines including
clusters across the Grid. Primary target is
metropolitan-area high-bandwidth networks, i.e., more
than 10Gbps bandwidth with shorter than 10msec
round-trip time (RTT).
2. "Developing an Agricultural Monitoring System from
Remote Sensing Data Using GridRPC on Ninf-G"
Grid Interoperation and Regional Collaboration"
Organizing Chairs:Aki Nakao /Uni. of Tokyo, Sue Moon /KAIST
Objectives: Overlay network has become a popular vehicle to conduct experiments on wide-area distributed systems such as CDN and to explore the space for the next generation Internet architecture as already seen in recent GENI initiative originating in U.S. This session introduces PlanetLab, a planetary-scale overlay network, and research activities in PlabetLab community. It also discusses the future of PlanetLab from APAN point of view and what APAN countries could achieve using PlanetLab or their own test-bed alike.
Target Audience: researchers/engineers/students/anyone interested
Session Plan:Speaker: Aki Nakao
Organizing Chairs: JW Kim, GIST
Objectives: This HDTV tutorial session will provide attendees with an opportunity to learn the latest development around the network-based delivery of HD (high-definition) video technology.
Target Audience: HDTV users in the Asia Pacific region.
Session 1: Tutorial on HD video over IPnetworksSpeaker: JongWon Kim on behalf of ANF HDTV WG & GIST/KAIST/KISTI
Objective:This HDTV tutorial session will provide attendees with an opportunity to learn the latest development around the network-based delivery of HD (high-definition) video technology.
- Overview on HD Video over IP
Objective: This HDTV session is designed to provide attendees with an opportunity to discuss the latest development around the network-based delivery of HD (high-definition) video technology. Aiming to provide immersive experience to end users with HD quality video, lots of efforts are taking place to enable HD video contents over high-speed research networks. In this session, several on-going efforts on HD video delivery will be presented and discussed.
speaker: Ladan Gharai - USC ISI; Colin Perkins - University of Glasgow
In this talk we present the architecture and implementation of the UltraGrid system and our experiences video conferencing with UltraGrid during SuperComputing 2005. The UltraGrid video conferencing system enables high-definition (HD) interactive video conferencing with minimal latency. For uncompressed HD, UltraGrid operates in two different modes: one at just under 1 Gbps (for environments limited to 1 Gbps transport) and another at full rate HD mode of over 1.2 Gbps. In combination with AccessGrid, UltraGrid provides a complete HD video conferencing experience, utilizing AccessGrid's venue server infrastructure and audio services.
Speakers: Keiji Harada(NTT), Katsuyuki Hasebe(NTT Communications) and Hiroyuki Kimiyama (NTT), Tsuyoshi Ogura(NTT)
In this talk, we introduce our activities on uncompressed HD over IP using "i-Visto": JGN II Symposium, Expo in JAPAN, Interop, InterBEE and others. The talk will include remote presentation from NTT Lab. using i-Visto.
Speaker: Seungjoo Lee, Jaeyoun Kim, and JongWon Kim - GIST (Gwangju Institute of Science & Technology)
This talk presents a cost-effective realization of uncompressed HD (high definition) video transport system over high-speed IP network, which is designed and implemented to support an interactive video-based collaboration environment with ultimate HD video quality.
Speaker:Mike Wellings and others - Research Channel
ResearchChannel recently demonstrated the iHD1500 Interactive HD communication system at Supercomputing 2005 in Seattle. Building upon the earlier hardware-based demonstration at iGRID, the RC team successfully ran the software-only version of iHD1500. This presentation will center on the differences between the two systems, the effort to lower the end-to-end latency, detail of the current version. We will also discuss the push toward Open-Source, and what that will mean for the project organization, and where we would like to go with all of this.
Speaker:Koji Okamura and others - Kyushu University
Organizing Chairs: : Shuji Shimizu (Kyushu University Hospital, Japan), Ho-Seong Han (Seoul National University Bundang Hospital, Korea)
Objectives: To establish a medical network with high-quality moving image on a broadband Internet in all Asia-Pacific regions. In order to expand our WG, it is essential for both medical and engineering people to get together on site and discuss our next strategy. At the same time, we will demonstrate our new and developing systems to our members.
1.Medical workshop (9:00-12:30)
A)Network Update: AP and worldwide
B)Network Update: Chinese medical network
C)Thai Medical Network and Inter-University Network
D)Academic Network Construction In China
E)Current activity on medical e-learning
F)Telemedicine at The Chinese University of Hong Kong (CUHK)
G)Telemedicine - Mumbai, India
H)UP Manila Information Technology Updates
I)Plan for implementing DVTS teleconference into the Siriraj Medical Congress
J)Report of Telemedicine Activities
K)Advanced Networking at Flinders University, South Australia the last 6 months.
L)The introduction of ELSA in Seoul
2. Medical live demonstration of endoscopy and teleconsultation (14:00-17:30):
1--Live demonstration of endoscopic submucosal dissection (EMR)
-Subject: Endoscopic Submucosal Dissection (ESD)
Chairman: Shuji Shimizu (Tokyo Venue)
Moderators and discussants at each station:
1) Tokyo Venue
Program (Japan time):
Operator: Dr Shigetaka Yoshinaga
15:25-15:30: Closing remarks: Young-Woo Kim
-Tokyo venue-Korea Telecom office in Seoul
-Subject: Laparoscopic proximal gastrectomy
3--Video teleconference connecting 10 stations with DVTS
- Subject: Laparoscopic colectomy
(Adelaide 18:00-19:00, China, Taiwan, Singapore: 15:30-16:30)
Chairman: Shuji Shimizu, Ho-Seong Han (Tokyo Venue)
Moderators and discussants at each station:
Program (Japan time):
Organizing Chairs:Shuji Shimizu (Kyushu University Hospital, Japan), Ho-Seong Han (Seoul National University Bundang Hospital, Korea)
Medical WG Meeting (16:00-17:30)
--Introduction of new members
Last Updated 9 Jan 2007